The two procedures available for debugging in the firewall kernel are: i. fw ctl zdebug ii. fw ctl debug/kdebug Choose the correct statement explaining the difference in the two.
A.
(i) Is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to get an output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
B.
(i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy
C.
(i) is used to debug only issues related to dropping traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.
D.
(i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server
A is correct. Check this document.
https://community.checkpoint.com/t5/Security-Gateways/quot-fw-ctl-zdebug-quot-Helpful-Command-Combinations/m-p/40680#M3392
According to the study material, this should be A:
The Zdebug has a 1 MB buffer, cleans the buffer, enable flags and collects debug messages from the kernel for you.
According to C, it is used for drop traffic, this is completely false
You can set modules on it as well, such as CCP, cluster, fw, drop etc.
Debug requires more configuration to be effective, but gives you more opportunities to play with, therefore, A is the correct answer.
upvoted 4 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
jrugel
2 months agoprincessAli
1 year, 9 months agoSlayer001
1 year, 10 months agoSamooj
2 years agocastieltel
2 years agohenkpoa
2 years, 2 months ago